CVE-2025-4310 – iSourcecode Content Management System Unrestricted File Upload Vulnerability

May 6, 2025

CVE ID : CVE-2025-4310

Published : May 6, 2025, 4:16 a.m. | 3 hours, 31 minutes ago

Description : A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. This affects an unknown part of the file /admin/add_topic.php?category=BBS. The manipulation of the argument Cover Image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4311 – iSourcecode Content Management System SQL Injection Vulnerability

Next Article CVE-2025-4309 – PHPGurukul Art Gallery Management System SQL Injection Vulnerability

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-4310 – iSourcecode Content Management System Unrestricted File Upload Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

How To Fix Forced Reflows And Layout Thrashing

Ubuntu 24.04 LTS Adds Power Warnings for EU Compliance

CVE-2025-46626 – Tenda RX2 Pro AES Key Reuse Vulnerability

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

CheepCode Engineers are bored watching their IDE write code. The next step is headless: writing tasks for the AI, and reviewing its work. That’s how CheepCode works.

Grafito is a simple, self-contained web-based log viewer for journalctl

8 Best Free and Open Source Restic Wrappers

Ex-Army Soldier Cameron John Wagenius Pleads Guilty to $1M Cyber Extortion Scheme

CVE-2025-4310 – iSourcecode Content Management System Unrestricted File Upload Vulnerability

Related Posts